Vulnerabilities > University OF Cambridge > Exim > 3.35
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-07-07 | CVE-2004-0399 | Unspecified vulnerability in University of Cambridge Exim 3.35 Stack-based buffer overflow in Exim 3.35, and other versions before 4, when the sender_verify option is true, allows remote attackers to cause a denial of service and possibly execute arbitrary code during sender verification. | 7.5 |
2003-10-20 | CVE-2003-0743 | Unspecified vulnerability in University of Cambridge Exim Heap-based buffer overflow in smtp_in.c for Exim 3 (exim3) before 3.36 and Exim 4 (exim4) before 4.21 may allow remote attackers to execute arbitrary code via an invalid (1) HELO or (2) EHLO argument with a large number of spaces followed by a NULL character and a newline, which is not properly trimmed before the "(no argument given)" string is appended to the buffer. | 7.5 |
2002-12-23 | CVE-2002-1381 | Unspecified vulnerability in University of Cambridge Exim 3.35/3.36/4.10 Format string vulnerability in daemon.c for Exim 4.x through 4.10, and 3.x through 3.36, allows exim administrative users to execute arbitrary code by modifying the pid_file_path value. | 7.2 |